VYPR
Unrated severityNVD Advisory· Published Aug 2, 2021· Updated Sep 16, 2024

QSAN Storage Manager - Reflected Cross-Site Scripting

CVE-2021-37216

Description

QSAN Storage Manager header page parameters does not filter special characters. Remote attackers can inject JavaScript without logging in and launch reflected XSS attacks to access and modify specific data.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.